Yes! What did we expect! Surely your exchange (which has absolutely no customers) is better! Besides the huge fees, lack of transparency, total lack of legal registration, insistence that Bitcoin is fake money (which is your poorman's excuse for why you don't need registration-- ignorance is no excuse for breaking the law, idiot) of course.

How are you and Maria doing? Do you guys talk anymore? You both have the same IP address so I just assume she must be your cleaning lady since you also claim to be a millionaire who owns his own restaurant. What was that address again? I'll be in New York for the next few days. I'd love to come take some photos so that FinCEN knows more about you before you close you down for money laundering. Your 6 month grace period for registering with the US Federal Government for money exchange is almost up amigo.

Classy, taking a dig at competitors based on age (when it was the server HOST who got hacked). Yeah, I think I'll stay away from yours too.

1) CoinExchanger is not registered as a business, much less an exchange.2) CoinExchanger is not AML compliant and is in direct violation of FinCEN rulings.3) CoinExchanger's owner has publicly stated that he thinks bitcoin is worthless and is monopoly money.4) CoinExchange's threads always make ridiculous claims, just like this one "We just received a 20k BTC deposit!" yet never any proof of those claims.5) He says he owns a restaurant in New York city, except when Charlie Shrem of BitInstant (also a native New Yorker) offered to pay him a visit, he froze up and completely stopped responding to all his scammy threads.6) He has the same IP as "Maria" who is a Forex spammer.7) He claims he owns the restaurant, has millions of dollars, and much business experience but can't provide a single bit of proof for anything he says.He is a scammer. He promised to give me BTC for joining his exchange but when I tried to use the code he gave me, it said the code was invalid, and upon inquiry of why that was, he ignored me.

Are you serious with these comments, you are playing in a market that is disruptive by it's very nature and therefore non-conformist in many ways and you are going to use age as the reason to point out a loss. I'd be more impressed with the fact that a 17 year old is liquid enough to cover his losses.

In short thanks for letting me know I need to keep myself and my resources far away from you.

Classy, taking a dig at competitors based on age (when it was the server HOST who got hacked). Yeah, I think I'll stay away from yours too.

His 17 year old mistake was holding on to that amount on a unencrypted hot wallet. Like the gas station owner holding all the cash at the cash register.

Then let's see proof you aren't doing the same thing. Until you provide proof otherwise, we will assume you are both 17 and holding your wallets all in unencrypted non-password protected folders on a free-hosting site.

Classy, taking a dig at competitors based on age (when it was the server HOST who got hacked). Yeah, I think I'll stay away from yours too.

His 17 year old mistake was holding on to that amount on a unencrypted hot wallet. Like the gas station owner holding all the cash at the cash register.

Here, I'll cite my comment on reddit:

Quote

I know there's encryption, but this is a live website that supports automated withdrawals. If the website needs to get money from the encrypted wallet, it needs the key. If it needs the key, the key must be stored on the server somewhere (or find its way to the server every time a request is made). You can obfuscate it, but a decent attacker would know how to find it anyway.

Truecrypt doesn't do anything useful when you can get a root console into the running machine from the web admin interface.

All the suggestions I see to encrypt the wallet seem to neglect the fact that this was a "hot wallet", and that it served hundreds of customers in an automated fashion. Manual payments are safer, sure, but they don't scale.

Classy, taking a dig at competitors based on age (when it was the server HOST who got hacked). Yeah, I think I'll stay away from yours too.

His 17 year old mistake was holding on to that amount on a unencrypted hot wallet. Like the gas station owner holding all the cash at the cash register.

Here, I'll cite my comment on reddit:

Quote

I know there's encryption, but this is a live website that supports automated withdrawals. If the website needs to get money from the encrypted wallet, it needs the key. If it needs the key, the key must be stored on the server somewhere (or find its way to the server every time a request is made). You can obfuscate it, but a decent attacker would know how to find it anyway.

Truecrypt doesn't do anything useful when you can get a root console into the running machine from the web admin interface.

All the suggestions I see to encrypt the wallet seem to neglect the fact that this was a "hot wallet", and that it served hundreds of customers in an automated fashion. Manual payments are safer, sure, but they don't scale.

Basically, OP wouldn't know about these issues of scalability and risk because he has 0 customers on his scam site hosted in his kitchen.